Filter
Top Products
Chapter 25 Access Control
GS-3012/GS-3012F User’s Guide
181
25.6 SSH Implementation
Your switch supports SSH versions 1 and 2 using RSA and DSA authentication and five
encryption methods (AES, 3DES, RC4, Blowfish and CAST). The SSH server is implemented
on the switch for remote management and file transfer on port 22 (by default). Up to four SSH
connections are allowed at a time.
25.6.1 Requirements for Using SSH
You must install an SSH client program on a client computer (Windows or Linux operating
system) that is used to connect to the switch over SSH.
25.7 Introduction to HTTPS
HTTPS (HyperText Transfer Protocol over Secure Socket Layer, or HTTP over SSL) is a web
protocol that encrypts and decrypts web pages. Secure Socket Layer (SSL) is an application-
level protocol that enables secure transactions of data by ensuring confidentiality (an
unauthorized party cannot read the transferred data), authentication (one party can identify the
other party) and data integrity (you know if data has been changed).
It relies upon certificates, public keys, and private keys.
HTTPS on the switch is used so that you may securely access the switch using the web
configurator. The SSL protocol specifies that the SSL server (the switch) must always
authenticate itself to the SSL client (the computer which requests the HTTPS connection with
the switch), whereas the SSL client only should authenticate itself when the SSL server
requires it to do so.
Please refer to the following figure.
1 HTTPS connection requests from an SSL-aware web browser go to port 443 (by default)
on the switch’s WS (web server).
2 HTTP connection requests from a web browser go to port 80 (by default) on the switch’s
WS (web server).
Figure 100 HTTPS Implementation
" If you disable HTTP in the Service Access Control screen, then the switch
blocks all HTTP connection attempts.